In The Claims 



Please make the following amendments to the claims: 

1. (Currently Amended) A method for defeating a denial-of-service attack, for use 
in a communication system in which a client sends a ciphertext of a random number 
chosen by the client encrypted imder a public key of a server to authenticate the server, 
the method comprising the steps of: 

(a) at the server, generating a random number in response to a service request 
from a client and sending the random number to the client; 

(b) at the server, receiving a ciphertext produced by the client using the random 
number from the server and a random number oolcctod by the client , enciphered 
with the public key of the server; 

(c) at the server, recovering a random number r^' from the ciphertext received 
from the client based on a private key corresponding to the public key of the server and 
comparing the recovered random numberj;^ with the random number j:b sent to the 
client; and 

(d) at the server, comparing the recovered random number r^' to the random 
number rp sent to the client, and if the recovered random number j:b' is equal to the 
random number_rB sent to the client, providing the service to the client, and, otherwise, 
denying the service to the client . 

2. (Previously Presented) The method as received in claim 1, wherein, at the step 
(a), the random number is obtained by an equation - H{K^^^^^^ , index _ ) where H 
is a hash function, K^ster is a secret master key and index_rg is an index parameter for the 
random number. 

3. (Currently Amended) A method for defeating denial-of-service attack, applicable 
to a server authentication system in which a client uses a discrete exponentiation g'^'' as 
a client's challenge to a server, a private key and a public key of the server are 
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respectively b and ^, and the ciphertext of the client's challenge using the public key of 
the server is g*'^ , the method comprising the steps of: 

(a) at the server, sending a random number i'a'IbJ^ ^ client; 

(b) at the server, receiving x and y values which the client computed by using the 
random number from the server as: 

wherein is a random number selected by the client, b is the private key of the 
server and is the public key of the server, and 

y = Kg'n 

where h represents a hash function; 

(c) comparing y from the client with y' as follows: 

y=//(x*'g-^0;and 

(d) if y an dis equal to y' match, providing a requested service to the client, and, 
otherwise, denying the service to the client. 

4. (Currently Amended) In a commimication system having a large capability 
processor in which a client sends a server a ciphertext of a random number encrypted 
under a public key of the server to authenticate the server, a computer readable 
medium for recording a program for implementing the functions of: 

(a) at the server, generating a random number in response to a service request 
from a client and sending the random number to the client; 

(b) at the server, receiving a ciphertext which is produced by the client based on 
the random number vig^.sent to the client and a random number produced by the 
elien t. enciphered with the public key of the server: 

(c) at the server, recovering a random number r^' from the ciphertext received 
from the client based on a private key corresponding to the public key of the server and 
comparing the recovered random number with the random number sent to the client; 
and 

(d) if the recovered random numberj:^' is equal to the random number z:g.sent to 
the client, providing the service, and, otherwise, denying the service. 
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5. (Currently Amended) In a server authentication system having a large capability 
processor, in which a client uses a discrete exponentiation g'' as a client's challenge to a 
server, a private key and a corresponding public key of the server are respectively b and 
^, and a ciphertext of the client's challenge using the public key of the server is g*'*^ , a 
computer readable medium for recording a program for implementing the functions of: 

(a) at the server, sending a random number to a client; 

(b) at the server, receiving x and y values which the client computed by using the 
random number from the server as: 

where in is a random number selected by the client, b is the private key of the 
server and ^ is the public key of the server, and 

where h represents a hash function; 

(c) at the server, comparing y from the client with y' as follows: 

y=Kx'''g-'n; and 

(d) if y aftd ris equal to y' match , providing a service to the client, and, otherwise, 
denying the service. 



51876P225 



4 



09/752,668 



